JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.215.130.165

20.215.130.165 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.215.130.165

Whois 20.215.130.165

IP Abuse Reports for 20.215.130.165:

This IP address has been reported a total of 34 times from 29 distinct sources. 20.215.130.165 was first reported on December 31st 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 Adam Pearson	2026-03-14 05:34:39 (3 months ago)	[linuxmafia.pl] Blocked by SysWarden Firewall (Web Attack Port 80)	Port Scan Exploited Host Web App Attack
🇦🇹 urnilxfgbez	2026-03-13 23:45:00 (3 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-03-13 23:28:44 (3 months ago)	2026-03-14T00:28:43.125719+01:00 vps kernel: [35184763.673599] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-03-14T00:28:43.125719+01:00 vps kernel: [35184763.673599] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.215.130.165 DST=54.37.14.118 LEN=40 TOS=0x00 PREC=0x00 TTL=45 ID=36370 PROTO=TCP SPT=6082 DPT=23 WINDOW=32881 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇩🇪 arc21	2026-03-13 22:06:35 (3 months ago)	2026-03-13T22:06:34.082436+00:00 database-prodv1-game kernel: [603526.848339] [UFW BLOCK] IN=eth0 OU ... show more 2026-03-13T22:06:34.082436+00:00 database-prodv1-game kernel: [603526.848339] [UFW BLOCK] IN=eth0 OUT= MAC=92:00:06:71:5d:8a:d2:74:7f:6e:37:e3:08:00 SRC=20.215.130.165 DST=142.132.169.25 LEN=40 TOS=0x00 PREC=0x00 TTL=46 ID=1976 PROTO=TCP SPT=6081 DPT=80 WINDOW=12481 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇵🇱 IROK	2026-03-13 17:51:34 (3 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan
🇺🇸 lnklnx	2026-03-13 17:30:43 (3 months ago)	www.lnklnx.com:80 20.215.130.165 - - [13/Mar/2026:12:30:41 -0500] "POST /cgi-bin/.%%%%32%%65/.%%%%32 ... show more www.lnklnx.com:80 20.215.130.165 - - [13/Mar/2026:12:30:41 -0500] "POST /cgi-bin/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/bin/sh HTTP/1.1" 400 528 "-" "-" ... show less	Web App Attack
🇩🇪 Admins@FBN	2026-03-13 13:47:02 (3 months ago)	FW-PortScan: Traffic Blocked srcport=6086 dstport=80	Port Scan
🇩🇪 centurion	2026-03-13 12:24:34 (3 months ago)	Blocked by UFW on ns02 [80/tcp] Source port: 6086 TTL: 53 Packet length: 40 TOS: 0x00 This report w ... show more Blocked by UFW on ns02 [80/tcp] Source port: 6086 TTL: 53 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 N2N	2026-03-13 06:23:36 (3 months ago)		Hacking Web App Attack
🇵🇱 sefinek.net	2026-03-12 16:35:49 (3 months ago)	Blocked by UFW on PL02 [80/tcp] \| SPT: 8576 \| TTL: 45 \| LEN: 40 \| TOS: 0x00 • Reported by: github.co ... show more Blocked by UFW on PL02 [80/tcp] \| SPT: 8576 \| TTL: 45 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
Anonymous	2026-03-12 02:30:53 (3 months ago)	Try to connect to Port_Scan_80_stealth	Port Scan
🇧🇷 somosbr	2026-03-12 00:26:37 (3 months ago)	[2026-03-12T00:26:37Z] Unsolicited scan from 20.215.130.165 to port 443/tcp	Port Scan
🇨🇿 Countryman	2026-03-11 23:13:03 (3 months ago)	IPS detection: D-Link.IP.Camera.Config.Getuser.Information.Disclosure	Hacking
🇨🇿 Countryman	2026-03-11 23:13:03 (3 months ago)	IPS detection: D-Link.IP.Camera.Config.Getuser.Information.Disclosure	Hacking
🇫🇮 tjs	2026-03-11 21:50:00 (3 months ago)	web attack, shell command injection attempt	Hacking Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.217.46.83

🇹🇼 220.134.24.196

🇺🇸 195.184.76.220

🇭🇰 150.5.154.160

🇰🇷 119.200.229.33

🇬🇧 89.37.172.134

🇫🇷 83.194.93.43

🇨🇳 58.18.103.142

🇮🇳 52.172.177.191

🇮🇳 49.43.135.131

🇨🇳 43.226.37.33

🇯🇵 43.133.26.159

🇨🇦 2607:fa49:d343:5700:dc62:dad1:f0eb:7eff

🇹🇭 203.154.158.195

🇲🇽 187.190.35.163

🇺🇸 173.239.218.239

🇺🇸 147.185.132.54

🇺🇸 104.168.49.99

🇺🇸 100.29.192.71

🇫🇷 91.231.89.77